CVE List - 2020 / February
Showing 901 - 1000 of 1397 CVEs for February 2020 (Page 10 of 14)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2020-9021 | 2020-02-17 | Post Oak AWAM Bluetooth Field Device 7400v2.08.21.2018, 7800SD.2015.1.16, 2011.3, 7400v2.02.01.2019,... |
| CVE-2020-9020 | 2020-02-17 | Iteris Vantage Velocity Field Unit 2.3.1, 2.4.2, and 3.0 devices... |
| CVE-2020-7252 | 2020-02-17 | Unquoted service executable path |
| CVE-2020-5531 | 2020-02-17 | Mitsubishi Electric MELSEC C Controller Module and MELIPC Series MI5000... |
| CVE-2020-9005 | 2020-02-17 | meshsystem.dll in Valve Dota 2 through 2020-02-17 allows remote attackers... |
| CVE-2019-12825 | 2020-02-17 | Unauthorized Access to the Container Registry of other groups was... |
| CVE-2020-9006 | 2020-02-17 | The Popup Builder plugin 2.2.8 through 2.6.7.6 for WordPress is... |
| CVE-2020-8795 | 2020-02-17 | In GitLab Enterprise Edition (EE) 12.5.0 through 12.7.5, sharing a... |
| CVE-2020-8518 | 2020-02-17 | Horde Groupware Webmail Edition 5.2.22 allows injection of arbitrary PHP... |
| CVE-2020-8427 | 2020-02-17 | In Unitrends Backup before 10.4.1, an HTTP request parameter was... |
| CVE-2020-6850 | 2020-02-17 | Utilities.php in the miniorange-saml-20-single-sign-on plugin before 4.8.84 for WordPress allows... |
| CVE-2020-1692 | 2020-02-17 | Moodle before version 3.7.2 is vulnerable to information exposure of... |
| CVE-2020-9038 | 2020-02-17 | Joplin through 1.0.184 allows Arbitrary File Read via XSS. |
| CVE-2013-3738 | 2020-02-17 | A File Inclusion vulnerability exists in Zabbix 2.0.6 due to... |
| CVE-2013-3722 | 2020-02-17 | A Denial of Service (infinite loop) exists in OpenSIPS before... |
| CVE-2020-1704 | 2020-02-17 | An insecure modification vulnerability in the /etc/passwd file was found... |
| CVE-2019-12954 | 2020-02-17 | SolarWinds Network Performance Monitor (Orion Platform 2018, NPM 12.3, NetPath... |
| CVE-2020-9043 | 2020-02-17 | The wpCentral plugin before 1.5.1 for WordPress allows disclosure of... |
| CVE-2015-0258 | 2020-02-17 | Multiple incomplete blacklist vulnerabilities in the avatar upload functionality in... |
| CVE-2015-6922 | 2020-02-17 | Kaseya Virtual System Administrator (VSA) 7.x before 7.0.0.33, 8.x before... |
| CVE-2015-4715 | 2020-02-17 | The fetch function in OAuth/Curl.php in Dropbox-PHP, as used in... |
| CVE-2015-5216 | 2020-02-17 | The Identity Provider (IdP) server in Ipsilon 0.1.0 before 1.0.1... |
| CVE-2013-7324 | 2020-02-17 | Webkit-GTK 2.x (any version with HTML5 audio/video support based on... |
| CVE-2019-20474 | 2020-02-17 | An issue was discovered in Zoho ManageEngine Remote Access Plus... |
| CVE-2019-18998 | 2020-02-17 | Asset Suite Direct Object Reference Access |
| CVE-2020-7597 | 2020-02-17 | codecov-node npm module before 3.6.5 allows remote attackers to execute... |
| CVE-2020-1858 | 2020-02-17 | Huawei products NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00SPC100; Secospace USG6600... |
| CVE-2020-1693 | 2020-02-17 | A flaw was found in Spacewalk up to version 2.9... |
| CVE-2020-1828 | 2020-02-17 | Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; and Secospace USG6600... |
| CVE-2019-19325 | 2020-02-17 | SilverStripe through 4.4.x before 4.4.5 and 4.5.x before 4.5.2 allows... |
| CVE-2020-1857 | 2020-02-17 | Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00SPC100; and Secospace USG6600... |
| CVE-2020-8768 | 2020-02-17 | An issue was discovered on Phoenix Contact Emalytics Controller ILC... |
| CVE-2020-1829 | 2020-02-17 | Huawei NIP6800 versions V500R001C30 and V500R001C60SPC500; and Secospace USG6600 and... |
| CVE-2020-7959 | 2020-02-17 | LabVantage LIMS 8.3 does not properly maintain the confidentiality of... |
| CVE-2020-1856 | 2020-02-17 | Huawei NGFW Module, NIP6300, NIP6600, Secospace USG6500, Secospace USG6600, and... |
| CVE-2020-1827 | 2020-02-17 | Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00SPC100; and Secospace USG6600... |
| CVE-2020-1841 | 2020-02-17 | Huawei CloudLink Board version 20.0.0; DP300 version V500R002C00; RSE6500 versions... |
| CVE-2020-1853 | 2020-02-17 | GaussDB 200 with version of 6.5.1 have a path traversal... |
| CVE-2014-1947 | 2020-02-17 | Stack-based buffer overflow in the WritePSDImage function in coders/psd.c in... |
| CVE-2014-7236 | 2020-02-17 | Eval injection vulnerability in lib/TWiki/Plugins.pm in TWiki before 6.0.1 allows... |
| CVE-2014-4981 | 2020-02-17 | LPAR2RRD in 3.5 and earlier allows remote attackers to execute... |
| CVE-2015-8751 | 2020-02-17 | Integer overflow in the jas_matrix_create function in JasPer allows context-dependent... |
| CVE-2014-8089 | 2020-02-17 | SQL injection vulnerability in Zend Framework before 1.12.9, 2.2.x before... |
| CVE-2020-1815 | 2020-02-17 | Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; Secospace USG6600 and... |
| CVE-2020-1816 | 2020-02-17 | Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; Secospace USG6600 and... |
| CVE-2020-1811 | 2020-02-17 | GaussDB 200 with version of 6.5.1 have a command injection... |
| CVE-2020-1830 | 2020-02-17 | Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; Secospace USG6600 and... |
| CVE-2020-1882 | 2020-02-17 | Huawei mobile phones Ever-L29B versions earlier than 10.0.0.180(C185E6R3P3), earlier than... |
| CVE-2020-1872 | 2020-02-18 | Huawei smart phones P10 Plus with versions earlier than 9.1.0.201(C01E75R1P12T8),... |
| CVE-2020-1814 | 2020-02-18 | Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; Secospace USG6600 and... |
| CVE-2020-1791 | 2020-02-18 | HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.185(C00E74R3P8) have... |
| CVE-2020-1790 | 2020-02-18 | GaussDB 200 with version of 6.5.1 have a command injection... |
| CVE-2020-1843 | 2020-02-18 | Huawei HEGE-560 version 1.0.1.20(SP2), OSCA-550 version 1.0.0.71(SP1), OSCA-550A version 1.0.0.71(SP1),... |
| CVE-2020-1855 | 2020-02-18 | Huawei HEGE-570 version 1.0.1.22(SP3); and HEGE-560, OSCA-550, OSCA-550A, OSCA-550AX, and... |
| CVE-2020-1812 | 2020-02-18 | HUAWEI P30 smartphones with versions earlier than 10.0.0.173(C00E73R1P11) have an... |
| CVE-2020-1789 | 2020-02-18 | Huawei OSCA-550, OSCA-550A, OSCA-550AX, and OSCA-550X products with version 1.0.1.21(SP3)... |
| CVE-2020-1842 | 2020-02-18 | Huawei HEGE-560 version 1.0.1.20(SP2); OSCA-550 and OSCA-550A version 1.0.0.71(SP1); and... |
| CVE-2020-8011 | 2020-02-18 | CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and... |
| CVE-2020-8010 | 2020-02-18 | CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and... |
| CVE-2020-8012 | 2020-02-18 | CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and... |
| CVE-2020-5530 | 2020-02-18 | Cross-site request forgery (CSRF) vulnerability in Easy Property Listings versions... |
| CVE-2013-5594 | 2020-02-18 | Mozilla Firefox before 25 allows modification of anonymous content of... |
| CVE-2015-1425 | 2020-02-18 | JAKWEB Gecko CMS has Multiple Input Validation Vulnerabilities |
| CVE-2014-4651 | 2020-02-18 | It was found that the jclouds scriptbuilder Statements class wrote... |
| CVE-2013-4454 | 2020-02-18 | WordPress Portable phpMyAdmin Plugin 1.4.1 has Multiple Security Bypass Vulnerabilities |
| CVE-2015-6970 | 2020-02-18 | The web interface in Bosch Security Systems NBN-498 Dinion2X Day/Night... |
| CVE-2015-7506 | 2020-02-18 | The gif_next_LZW function in libnsgif.c in Libnsgif 0.1.2 allows context-dependent... |
| CVE-2013-4227 | 2020-02-18 | Cross-site request forgery (CSRF) vulnerability in the persona_xsrf_token function in... |
| CVE-2020-6844 | 2020-02-18 | In TopManage OLK 2020, login CSRF can be chained with... |
| CVE-2020-6845 | 2020-02-18 | An issue was discovered in TopManage OLK 2020. As there... |
| CVE-2014-4966 | 2020-02-18 | Ansible before 1.6.7 does not prevent inventory data with "{{"... |
| CVE-2014-4967 | 2020-02-18 | Multiple argument injection vulnerabilities in Ansible before 1.6.7 allow remote... |
| CVE-2020-9264 | 2020-02-18 | ESET Archive Support Module before 1296 allows virus-detection bypass via... |
| CVE-2019-18352 | 2020-02-18 | Improper access control exists on PHOENIX CONTACT FL NAT 2208... |
| CVE-2020-7450 | 2020-02-18 | In FreeBSD 12.1-STABLE before r357213, 12.1-RELEASE before 12.1-RELEASE-p2, 12.0-RELEASE before... |
| CVE-2019-5613 | 2020-02-18 | In FreeBSD 12.0-RELEASE before 12.0-RELEASE-p13, a missing check in the... |
| CVE-2019-15875 | 2020-02-18 | In FreeBSD 12.1-STABLE before r354734, 12.1-RELEASE before 12.1-RELEASE-p2, 12.0-RELEASE before... |
| CVE-2019-10794 | 2020-02-18 | All versions of component-flatten are vulnerable to Prototype Pollution. The... |
| CVE-2019-10795 | 2020-02-18 | undefsafe before 2.0.3 is vulnerable to Prototype Pollution. The 'a'... |
| CVE-2019-10792 | 2020-02-18 | bodymen before 1.1.1 is vulnerable to Prototype Pollution. The handler... |
| CVE-2019-10793 | 2020-02-18 | dot-object before 2.1.3 is vulnerable to Prototype Pollution. The set... |
| CVE-2019-10791 | 2020-02-18 | promise-probe before 0.10.0 allows remote attackers to perform a command... |
| CVE-2013-3323 | 2020-02-18 | A Privilege Escalation Vulnerability exists in IBM Maximo Asset Management... |
| CVE-2013-6295 | 2020-02-18 | PrestaShop 1.5.5 vulnerable to privilege escalation via a Salesman account... |
| CVE-2013-2679 | 2020-02-18 | Multiple cross-site scripting (XSS) vulnerabilities in Cisco Linksys E4200 router... |
| CVE-2014-3879 | 2020-02-18 | OpenPAM Nummularia 9.2 through 10.0 does not properly handle the... |
| CVE-2012-0718 | 2020-02-18 | IBM Tivoli Endpoint Manager 8 does not set the HttpOnly... |
| CVE-2020-9271 | 2020-02-18 | ICE Hrm 26.2.0 is vulnerable to CSRF that leads to... |
| CVE-2020-9270 | 2020-02-18 | ICE Hrm 26.2.0 is vulnerable to CSRF that leads to... |
| CVE-2020-9269 | 2020-02-18 | SOPlanning 1.45 is vulnerable to authenticated SQL Injection that leads... |
| CVE-2020-9268 | 2020-02-18 | SoPlanning 1.45 is vulnerable to SQL Injection in the OrderBy... |
| CVE-2020-9267 | 2020-02-18 | SOPlanning 1.45 is vulnerable to a CSRF attack that allows... |
| CVE-2020-9266 | 2020-02-18 | SOPlanning 1.45 is vulnerable to a CSRF attack that allows... |
| CVE-2020-9265 | 2020-02-18 | phpMyChat-Plus 1.98 is vulnerable to multiple SQL injections against the... |
| CVE-2015-7567 | 2020-02-18 | SQL injection vulnerability in Yeager CMS 1.2.1 allows remote attackers... |
| CVE-2015-7505 | 2020-02-18 | Stack-based buffer overflow in the gif_next_LZW function in libnsgif.c in... |
| CVE-2015-7507 | 2020-02-18 | libnsbmp.c in Libnsbmp 0.1.2 allows context-dependent attackers to cause a... |
| CVE-2013-4228 | 2020-02-18 | The OG access fields (visibility fields) implementation in Organic Groups... |
| CVE-2013-4226 | 2020-02-18 | The Authenticated User Page Caching (Authcache) module 7.x-1.x before 7.x-1.5... |
| CVE-2020-7796 | 2020-02-18 | Zimbra Collaboration Suite (ZCS) before 8.8.15 Patch 7 allows SSRF... |